Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/hijMYiQr6vyULb-mnkn1xi1JvNs.roa
File: hijMYiQr6vyULb-mnkn1xi1JvNs.roa (raw, json)
Hash identifier: dK5CEEe3WQ4TKnmD3J/bUooowbDXJp8gMo/+1WCMR7Q=
Subject key identifier: 86:28:CC:62:24:2B:EA:FC:94:2D:BF:A6:9E:49:F5:C6:2D:49:BC:DB
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 01942522246091E79E96B54C8D69FE8093D0
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/hijMYiQr6vyULb-mnkn1xi1JvNs.roa
Signing time: Thu 02 Jan 2025 03:49:42 +0000
ROA not before: Thu 02 Jan 2025 03:49:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214941
IP address blocks: 185.203.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:24:60:91:e7:9e:96:b5:4c:8d:69:fe:80:93:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 2 03:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8628cc62242beafc942dbfa69e49f5c62d49bcdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5d:7a:d0:67:36:7b:35:43:48:87:40:9a:74:
ca:14:5b:1e:1a:72:d6:30:30:5d:06:4e:11:58:63:
71:fe:e7:1d:5f:fa:e5:c4:b4:43:a6:21:2e:b8:8b:
cd:50:fd:00:78:3f:46:6a:a1:23:07:1d:7c:1a:69:
e8:0c:15:bb:18:44:5e:6e:10:6b:3e:9f:03:53:0d:
82:6f:b1:1d:eb:b7:f8:8b:ae:0d:2b:a0:f4:17:45:
9f:b9:5a:57:59:11:dd:92:59:d3:b5:47:e3:ba:82:
57:88:27:bc:05:3f:5b:54:35:35:a6:9b:31:b6:3b:
8e:d6:09:8d:d7:67:95:49:b8:68:9d:67:ea:50:7d:
73:95:f5:a0:d0:1f:fd:05:77:34:f6:92:a9:87:ef:
24:97:f4:89:ad:b6:cb:b5:5a:b0:fd:ff:35:f0:6b:
03:59:18:d1:b5:8c:e9:33:ef:7c:96:f4:65:5d:48:
5d:db:fc:6b:09:c1:89:ee:83:d0:11:99:ea:d9:c5:
80:fa:70:ed:d1:28:e5:29:50:a6:37:7d:23:7b:35:
10:f9:f3:df:97:fa:8e:81:6d:e8:6a:a9:f1:70:e0:
bd:76:a5:bc:e7:d4:d7:a1:3f:0e:fa:64:91:ad:77:
98:5e:ed:03:db:75:15:81:b7:b1:c3:ff:95:f0:4f:
ef:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:28:CC:62:24:2B:EA:FC:94:2D:BF:A6:9E:49:F5:C6:2D:49:BC:DB
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/hijMYiQr6vyULb-mnkn1xi1JvNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.33.0/24
Signature Algorithm: sha256WithRSAEncryption
27:78:25:8e:6e:93:2f:ca:e1:15:e7:83:f4:bc:43:1b:68:ea:
06:49:9d:e7:2a:33:ab:40:e9:54:52:ac:86:31:c2:fa:2f:00:
12:cc:d6:2b:9a:2c:7f:c5:df:83:4d:51:c4:39:47:19:83:07:
76:0b:4c:f6:f4:7c:98:b7:d8:1b:9b:fa:fc:86:84:ca:86:b0:
16:ad:38:f9:3f:0d:21:34:35:64:17:f4:f1:39:08:d8:fb:c9:
41:f6:0a:23:d7:07:cc:26:04:df:ce:35:90:c0:d7:c2:d7:7e:
d7:0d:22:09:6a:92:f6:41:dd:0b:f8:ca:74:15:f6:46:9f:5c:
0f:fa:f9:b8:b1:48:0a:f5:8e:64:78:ed:eb:09:9d:5a:a1:b7:
43:27:1a:0f:ea:c8:3b:a0:62:14:04:d4:d0:3b:ca:01:77:4e:
1b:d5:b0:ea:1b:0b:6c:ae:0e:98:e8:13:7a:c0:71:a5:7f:77:
bf:26:9b:9c:41:1c:72:d5:39:c8:95:42:9b:b5:d0:69:f3:c5:
e2:d4:b9:6d:9f:c6:65:35:45:c2:e8:93:79:9a:e5:a3:50:3e:
be:6a:9f:45:3f:6e:17:19:4a:33:83:b4:bf:54:42:08:8e:8c:
8d:15:a0:1c:8c:9d:2f:a0:03:37:2a:c1:5f:49:25:38:61:2b:
7d:57:9c:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIiRgkeeelrVMjWn+gJPQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1MDE4MTVjNmY5OGYzYTJiNjE4NGFmZWJmMThlYTM0MWJl
ODgyZWEwHhcNMjUwMTAyMDM0OTQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjI4Y2M2MjI0MmJlYWZjOTQyZGJmYTY5ZTQ5ZjVjNjJkNDliY2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml160Gc2ezVDSIdAmnTKFFseGnLW
MDBdBk4RWGNx/ucdX/rlxLRDpiEuuIvNUP0AeD9GaqEjBx18GmnoDBW7GERebhBr
Pp8DUw2Cb7Ed67f4i64NK6D0F0WfuVpXWRHdklnTtUfjuoJXiCe8BT9bVDU1ppsx
tjuO1gmN12eVSbhonWfqUH1zlfWg0B/9BXc09pKph+8kl/SJrbbLtVqw/f818GsD
WRjRtYzpM+98lvRlXUhd2/xrCcGJ7oPQEZnq2cWA+nDt0SjlKVCmN30jezUQ+fPf
l/qOgW3oaqnxcOC9dqW859TXoT8O+mSRrXeYXu0D23UVgbexw/+V8E/vXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIYozGIkK+r8lC2/pp5J9cYtSbzbMB8GA1UdIwQY
MBaAFOUBgVxvmPOithhK/r8Y6jQb6ILqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVFHQlhHLVk4NksyR0VyLXZ4anFOQnZvZ3VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy81YjAyMjItZWQ2NC00ZjU1LWI0NWIt
MDA1OWY3MzdlZjA1LzEvaGlqTVlpUXI2dnlVTGItbW5rbjF4aTFKdk5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy81YjAyMjItZWQ2NC00ZjU1LWI0NWItMDA1OWY3MzdlZjA1
LzEvNVFHQlhHLVk4NksyR0VyLXZ4anFOQnZvZ3VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucshMA0G
CSqGSIb3DQEBCwUAA4IBAQAneCWObpMvyuEV54P0vEMbaOoGSZ3nKjOrQOlUUqyG
McL6LwASzNYrmix/xd+DTVHEOUcZgwd2C0z29HyYt9gbm/r8hoTKhrAWrTj5Pw0h
NDVkF/TxOQjY+8lB9goj1wfMJgTfzjWQwNfC137XDSIJapL2Qd0L+Mp0FfZGn1wP
+vm4sUgK9Y5keO3rCZ1aobdDJxoP6sg7oGIUBNTQO8oBd04b1bDqGwtsrg6Y6BN6
wHGlf3e/JpucQRxy1TnIlUKbtdBp88Xi1Lltn8ZlNUXC6JN5muWjUD6+ap9FP24X
GUozg7S/VEIIjoyNFaAcjJ0voAM3KsFfSSU4YSt9V5zh
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:14:05 2025 by rpki-client